boatnet.sh4

First submission 2024-09-04 20:43:02 Last sumbission 2024-09-04 21:59:02

File details

File type: ELF 32-bit LSB executable, Renesas SH, version 1 (SYSV), statically linked, stripped
Mime type: application/x-executable
File size: 48.99 KB (50168 bytes)
MD5: fff246e77133dd3b33ff6c21315120bc
SHA1: 03924866778c5ad98b6d0aa95ad954da85309a12
SHA256: eac88f4bb64f2ddef7ddfc1e97aeaacccebc6ae9107293144c6cf3eec93a71a0

File features detected

Is DLL
Packers
Anti Debug
Anti VM
Signed
XOR

OSINT Enrichments

Virus Total: 41/79 VT report date: 2024-09-04 20:36:16
Malware Type 1 trojan
Threat Type 3 mirai gafgyt froz

URLs, FQDN and IP indicators 2

URL Host (FQDN/IP) Date Added
hXXp://93.123.85.167/hiddenbin/boatnet.sh4 VirusTotal Report 93.123.85.167 VirusTotal Report 2024-09-04 21:59:06
hXXp://93.123.85.167/sh4 VirusTotal Report 93.123.85.167 VirusTotal Report 2024-09-04 20:43:02

Strings analysis - Possible IPs found 3

93.123.85.167
255.255.255.255
127.0.0.1